Over the last few years, Captcha and reCaptcha have been hacked by spambots getting better. Google have improved their reCaptcha algorithm, but it is really only a matter of time before that too gets overtaken. Doing a little digging I found this article and I suspect I have only scratched the surface of the problem. The issues are legion, and the bots are getting better, that much is obvious. It seems the dog is chasing its own tail, and starting to run in ever decreasing circles.
To me, this is a self defeating activity. I can't read many reCaptchas, so I am flicking through the sequence of distorted images until I get one I can, and I don't have too much of a vision problem. Imagine someone who does? How stressful is that for them. There has to be an alternative, one that requires user input for those sites that require stronger security measures that does not disadvantage the visually impaired. Obviously reCaptcha is not the ideal, and likely any response is going to be attracting the attention of some smart cracker who will worry the problem until they can automate a successful response.
Does anyone have any idea about how Moodle can get around this issue? Ultimately, I suspect any discussion here will end up as a Moodle Tracker item, perhaps developing ideas that can be included as part of the core security applications, so please contribute, say something, any idea, no matter how whacko it may seem could be the key idea to fixing this issue. (Don't forget, many ideas were pooh-poohed even for decades before people realized that the idea was the right one.)